[OpenID] [oauth] Re: [diso-project] Re: OpenID Accessibility
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Tue Nov 4 23:01:58 UTC 2008
On 11/05/2008 12:14 AM, Martin Atkins:
>
> I use client certs to authenticated with MyOpenID. I solve this
> problem by having a separate cert to each device. That way I can
> revoke a cert if one of my devices gets "compromised", as I did for my
> work PC when I left my previous employer, and as I would do if I lost
> my laptop.
Actually this is a very good practice!
>
> Of course, I issue these certs in the first place by going to MyOpenID
> and logging in with a password. I'm sure there's a way to use one
> already-certed client to obtain a cert for another, but I don't know
> how to do with my browser's UI, which seems to be all about
> automatically installing certs into itself.
Look at https://eddyn.startssl.com/?app=12 on how this can be handled
without passwords AT ALL.
>
> (The browser on my cellphone doesn't support SSL client certs, sadly.)
Mozilla's mobile browser will...hope it will install at your cellphone
one day.
Regards
Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
Jabber: startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: Join the Revolution! <http://blog.startcom.org>
Phone: +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081105/ad2f536c/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6724 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20081105/ad2f536c/attachment-0002.bin>
More information about the general
mailing list